Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,303
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
669
pip
3,430
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

968 advisories

Loading
Venki Supravizio BPM through 18.0.1 was discovered to contain an arbitrary file upload... Critical Unreviewed
CVE-2024-46479 was published Jan 13, 2025
An arbitrary file upload vulnerability in /admin/upgrade of CSZ CMS v1.3.0 allows attackers to... Critical Unreviewed
CVE-2024-25414 was published Feb 16, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in jumpdemand 4ECPS Web Forms... Critical Unreviewed
CVE-2025-22504 was published Jan 9, 2025
An issue was discovered in Ovidentia 8.3. The file upload feature does not prevent the uploading... Critical Unreviewed
CVE-2022-41573 was published Jan 7, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in ThemeGlow JobBoard Job listing... Critical Unreviewed
CVE-2024-43243 was published Jan 7, 2025
An arbitrary file upload vulnerability in the component /adminUser/updateImg of WukongCRM-11.0... Critical Unreviewed
CVE-2024-55078 was published Jan 3, 2025
Apache Struts file upload logic is flawed Critical
CVE-2024-53677 was published for org.apache.struts:struts2-core (Maven) Dec 11, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Webdeclic WPMasterToolKit allows... Critical Unreviewed
CVE-2024-56249 was published Jan 2, 2025
Huang Yaoshi Pharmaceutical Management Software through 16.0 allows arbitrary file upload via a ... Critical Unreviewed
CVE-2024-56829 was published Jan 2, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Azzaroco WP SuperBackup allows... Critical Unreviewed
CVE-2024-56064 was published Dec 31, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a... Critical Unreviewed
CVE-2024-56046 was published Dec 31, 2024
A unrestricted upload of file with dangerous type vulnerability in epaper draft function in... Critical Unreviewed
CVE-2024-11984 was published Dec 19, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a... Critical Unreviewed
CVE-2024-56054 was published Dec 18, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a... Critical Unreviewed
CVE-2024-56057 was published Dec 18, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a... Critical Unreviewed
CVE-2024-56050 was published Dec 18, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a... Critical Unreviewed
CVE-2024-56052 was published Dec 18, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in SeedProd LLC SeedProd Pro allows... Critical Unreviewed
CVE-2024-54285 was published Dec 16, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in SuitePlugins Video & Photo... Critical Unreviewed
CVE-2024-54370 was published Dec 16, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Siddharth Nagar Import Export... Critical Unreviewed
CVE-2024-54262 was published Dec 13, 2024
The Super Backup & Clone - Migrate for WordPress plugin for WordPress is vulnerable to arbitrary... Critical Unreviewed
CVE-2024-9290 was published Dec 13, 2024
Kashipara E-learning Management System v1.0 is vulnerable to Remote Code Execution via File... Critical Unreviewed
CVE-2024-54918 was published Dec 9, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in Genetech Pie Register Premium... Critical Unreviewed
CVE-2024-53822 was published Dec 9, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Revy allows Upload a... Critical Unreviewed
CVE-2024-54214 was published Dec 6, 2024
Unrestricted file upload via security bypass in Convert Forms component for Joomla in versions... Critical Unreviewed
CVE-2024-40744 was published Dec 4, 2024
An arbitrary file upload vulnerability in the importSettings method of VisiCut v2.1 allows... Critical Unreviewed
CVE-2024-51365 was published Nov 21, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database